Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/8e1f53-b674-40e8-8bb8-db5d89e8a17c/1/QXnQMGmM-kYqfVt0Pi_6QtoAJ20.roa
File: QXnQMGmM-kYqfVt0Pi_6QtoAJ20.roa (raw, json)
Hash identifier: 6MFGatggN8sYvXMwWvA0eUCq/tcGi5q+szmu6Qb9AX4=
Subject key identifier: 41:79:D0:30:69:8C:FA:46:2A:7D:5B:74:3E:2F:FA:42:DA:00:27:6D
Certificate issuer: /CN=40cc81ff82ced61aef8476ace7a0e818bbae8fc4
Certificate serial: 0188965AC956907DD00D7DF0DDA5DAB50FBA
Authority key identifier: 40:CC:81:FF:82:CE:D6:1A:EF:84:76:AC:E7:A0:E8:18:BB:AE:8F:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QMyB_4LO1hrvhHas56DoGLuuj8Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/8e1f53-b674-40e8-8bb8-db5d89e8a17c/1/QXnQMGmM-kYqfVt0Pi_6QtoAJ20.roa
Signing time: Wed 07 Jun 2023 14:55:11 +0000
ROA not before: Wed 07 Jun 2023 14:55:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204774
IP address blocks: 2a13:5000::/29 maxlen: 48
2a13:5000::/48 maxlen: 64
Validation: Failed, certificate revoked on Mon 24 Jul 2023 15:56:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:96:5a:c9:56:90:7d:d0:0d:7d:f0:dd:a5:da:b5:0f:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40cc81ff82ced61aef8476ace7a0e818bbae8fc4
Validity
Not Before: Jun 7 14:55:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4179d030698cfa462a7d5b743e2ffa42da00276d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:80:10:fe:76:b9:e7:69:9a:53:83:1f:03:d4:
5f:54:cc:38:19:6a:cc:7d:40:74:86:bc:aa:a9:ae:
bb:2a:d0:b7:2b:d9:f0:d8:85:9f:e8:f7:b0:af:eb:
54:4c:be:b6:97:90:ce:99:40:d6:fa:65:c1:93:c0:
40:15:48:d5:45:d2:62:9d:f1:6d:4c:6a:33:5b:f3:
45:66:2c:c6:09:85:0e:d0:bb:3d:7c:ff:d3:14:c8:
63:0a:34:f4:4b:73:3d:5a:31:9d:d0:d4:64:85:d4:
59:01:61:06:88:6e:44:6a:42:9d:ba:63:08:7e:bb:
36:ad:a7:f0:e3:12:03:15:63:ab:5c:ad:34:2f:5a:
57:d6:85:cb:f1:2e:ff:36:3f:a7:03:c5:22:c9:dd:
3b:10:43:0f:e1:80:e5:9b:17:ee:9d:9f:65:9c:a6:
a2:bb:e0:f7:01:54:f7:4b:33:f4:5e:5e:02:4f:eb:
a5:46:92:28:61:d4:6f:d9:fb:da:ec:91:a7:5c:71:
0d:0a:13:34:a1:93:27:12:55:8c:36:a0:c7:a8:c3:
90:13:03:01:d5:72:2d:9a:f1:82:65:4e:bc:05:e4:
5c:5c:bd:bf:89:58:4c:14:66:49:1d:8c:74:e6:2d:
65:6b:75:3d:f5:b4:80:1d:af:93:6d:9f:48:98:8a:
fa:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:79:D0:30:69:8C:FA:46:2A:7D:5B:74:3E:2F:FA:42:DA:00:27:6D
X509v3 Authority Key Identifier:
keyid:40:CC:81:FF:82:CE:D6:1A:EF:84:76:AC:E7:A0:E8:18:BB:AE:8F:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QMyB_4LO1hrvhHas56DoGLuuj8Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/8e1f53-b674-40e8-8bb8-db5d89e8a17c/1/QXnQMGmM-kYqfVt0Pi_6QtoAJ20.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/8e1f53-b674-40e8-8bb8-db5d89e8a17c/1/QMyB_4LO1hrvhHas56DoGLuuj8Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:5000::/29
Signature Algorithm: sha256WithRSAEncryption
5f:41:72:e5:32:7e:6f:fe:15:31:8b:ef:31:4e:61:b6:97:98:
5a:48:86:0b:96:4d:79:23:54:85:1d:a4:c6:7f:3b:d0:ec:6d:
cc:09:ec:47:16:eb:f4:5f:ea:70:2d:31:50:c6:72:24:44:34:
d7:27:b7:e0:47:bf:51:31:c3:2d:bd:36:74:dd:00:42:73:52:
10:16:d7:dc:2c:c6:72:0c:c0:30:0f:d9:bb:e0:b7:4f:f2:dc:
91:04:0d:52:65:0c:51:b7:52:73:a3:3a:a3:21:56:43:40:70:
3a:98:35:f9:c4:6f:ef:39:80:a8:03:80:b5:c3:6c:bb:bd:ab:
66:b7:11:10:1d:5a:5d:7b:9e:52:df:2e:d4:9d:45:6b:ae:70:
61:ad:79:6e:eb:fd:b3:7b:f8:09:41:9e:4a:91:a0:81:9b:9e:
2e:88:61:8a:8f:7c:a4:1a:a1:60:8b:c0:cd:5e:71:01:68:e0:
c5:f6:af:f1:86:83:0e:e9:58:cd:e0:7c:bc:91:6c:f2:54:02:
ff:f2:e7:1f:ce:a3:ab:58:48:fe:24:34:a1:4f:32:96:a2:4b:
a2:52:cf:b4:97:08:f0:10:e1:09:e6:80:06:f9:67:e9:a9:87:
9a:b7:65:8e:33:6f:6b:fb:0d:49:e8:1b:cd:47:5b:f1:1a:5d:
13:1d:10:fb
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYiWWslWkH3QDX3w3aXatQ+6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQwY2M4MWZmODJjZWQ2MWFlZjg0NzZhY2U3YTBlODE4YmJh
ZThmYzQwHhcNMjMwNjA3MTQ1NTExWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0MTc5ZDAzMDY5OGNmYTQ2MmE3ZDViNzQzZTJmZmE0MmRhMDAyNzZkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx4AQ/na552maU4MfA9RfVMw4GWrM
fUB0hryqqa67KtC3K9nw2IWf6Pewr+tUTL62l5DOmUDW+mXBk8BAFUjVRdJinfFt
TGozW/NFZizGCYUO0Ls9fP/TFMhjCjT0S3M9WjGd0NRkhdRZAWEGiG5EakKdumMI
frs2rafw4xIDFWOrXK00L1pX1oXL8S7/Nj+nA8Uiyd07EEMP4YDlmxfunZ9lnKai
u+D3AVT3SzP0Xl4CT+ulRpIoYdRv2fva7JGnXHENChM0oZMnElWMNqDHqMOQEwMB
1XItmvGCZU68BeRcXL2/iVhMFGZJHYx05i1la3U99bSAHa+TbZ9ImIr62wIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFEF50DBpjPpGKn1bdD4v+kLaACdtMB8GA1UdIwQY
MBaAFEDMgf+CztYa74R2rOeg6Bi7ro/EMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUU15Ql80TE8xaHJ2aEhhczU2RG9HTHV1ajhRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MS84ZTFmNTMtYjY3NC00MGU4LThiYjgt
ZGI1ZDg5ZThhMTdjLzEvUVhuUU1HbU0ta1lxZlZ0MFBpXzZRdG9BSjIwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84MS84ZTFmNTMtYjY3NC00MGU4LThiYjgtZGI1ZDg5ZThhMTdj
LzEvUU15Ql80TE8xaHJ2aEhhczU2RG9HTHV1ajhRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKhNQADAN
BgkqhkiG9w0BAQsFAAOCAQEAX0Fy5TJ+b/4VMYvvMU5htpeYWkiGC5ZNeSNUhR2k
xn870OxtzAnsRxbr9F/qcC0xUMZyJEQ01ye34Ee/UTHDLb02dN0AQnNSEBbX3CzG
cgzAMA/Zu+C3T/LckQQNUmUMUbdSc6M6oyFWQ0BwOpg1+cRv7zmAqAOAtcNsu72r
ZrcREB1aXXueUt8u1J1Fa65wYa15buv9s3v4CUGeSpGggZueLohhio98pBqhYIvA
zV5xAWjgxfav8YaDDulYzeB8vJFs8lQC//LnH86jq1hI/iQ0oU8ylqJLolLPtJcI
8BDhCeaABvln6amHmrdljjNva/sNSegbzUdb8RpdEx0Q+w==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:02 2024 by rpki-client on console-fra.rpki-client.org